As per the documentation the secret is never shared unencrypted an the private k... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Twisell on Jan 25, 2024 \| parent \| context \| favorite \| on: Show HN: Retriever – Securely share secrets over t... As per the documentation the secret is never shared unencrypted an the private key to decypher it is never ever in the url. It stay in the receiver local storage.

rakoo on Jan 25, 2024 [–]

This only means the browser, and the javascript code, are part of the chain. Both of them can also be compromised, have bugs, and leak the secret.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact